Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/4i1Zsxfgc9b1y_vbxJYWJDxHbp4.roa
File: 4i1Zsxfgc9b1y_vbxJYWJDxHbp4.roa (raw, json)
Hash identifier: X1LuM3CklNcOS7lkD99aNmFyTWryNAJFFjubOUSDJ9A=
Subject key identifier: E2:2D:59:B3:17:E0:73:D6:F5:CB:FB:DB:C4:96:16:24:3C:47:6E:9E
Certificate issuer: /CN=845d042f65e1b1303a44e43e0e02748a75837b44
Certificate serial: 01856E266012E890114B388DC9F62F45A4CE
Authority key identifier: 84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/4i1Zsxfgc9b1y_vbxJYWJDxHbp4.roa
Signing time: Sun 01 Jan 2023 16:24:46 +0000
ROA not before: Sun 01 Jan 2023 16:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207604
IP address blocks: 185.119.90.0/24 maxlen: 24
185.119.91.0/24 maxlen: 24
185.119.88.0/24 maxlen: 24
185.119.89.0/24 maxlen: 24
2a0c:bf80:5a::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Nov 2023 09:54:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:60:12:e8:90:11:4b:38:8d:c9:f6:2f:45:a4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845d042f65e1b1303a44e43e0e02748a75837b44
Validity
Not Before: Jan 1 16:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e22d59b317e073d6f5cbfbdbc49616243c476e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:3e:09:ae:42:75:04:16:9c:34:8a:14:2d:
9d:bc:09:41:7f:20:81:75:d0:81:4b:6c:c5:fa:f4:
e8:ad:5b:60:53:95:6e:37:8d:a4:cf:dd:78:f6:d7:
e2:31:f5:58:1a:53:69:67:c7:5d:57:dd:79:1a:ab:
58:d4:26:d5:aa:cf:de:df:43:09:5f:2b:70:c4:f2:
4b:f3:25:48:e7:6d:53:21:72:93:a2:c8:fd:3c:95:
2d:f6:3f:01:03:3d:06:e9:4e:a1:8b:f7:fe:e8:54:
d8:5c:61:11:fb:f9:b4:7d:35:a4:60:22:18:90:0c:
57:28:d4:f0:b7:31:96:ba:15:1c:e5:1d:61:23:93:
25:83:64:29:ed:d2:5b:39:51:4e:b7:95:c1:5c:00:
a8:59:74:2c:28:7a:fa:6c:93:23:46:0c:8e:99:0b:
b9:4b:d6:30:20:9e:6f:e6:58:bb:0e:8f:af:4f:62:
e6:05:19:fc:de:02:68:cf:1b:f8:54:66:d9:bf:fa:
42:07:2d:8e:34:b5:4a:c6:14:f8:2e:b7:09:8a:b6:
fb:eb:1f:5f:27:b0:9e:eb:39:98:ea:3a:8c:4a:7b:
bc:fc:83:73:e5:25:a2:c0:f8:32:d8:e7:81:ed:12:
da:17:b7:b1:29:2a:04:e1:37:1c:66:40:dd:77:7b:
7d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2D:59:B3:17:E0:73:D6:F5:CB:FB:DB:C4:96:16:24:3C:47:6E:9E
X509v3 Authority Key Identifier:
keyid:84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/4i1Zsxfgc9b1y_vbxJYWJDxHbp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.88.0/22
IPv6:
2a0c:bf80:5a::/48
Signature Algorithm: sha256WithRSAEncryption
30:96:8b:38:ea:3d:dc:a1:ba:7d:e2:a7:f5:6f:c3:25:34:5f:
ef:e5:bf:a5:90:66:0b:c3:75:ef:32:9e:c7:f8:9a:0b:2d:82:
ac:82:e9:dc:e8:2e:d7:ac:73:d3:b2:02:f5:12:7e:2a:bd:68:
df:7d:c9:2e:f3:76:1f:49:c0:25:95:19:50:a8:ae:ca:c3:57:
84:cd:48:f5:c2:e7:f5:1d:e3:df:ca:49:34:d3:0e:ee:bd:6e:
28:37:53:4b:11:b1:37:c2:dd:ac:65:51:90:80:e8:34:94:31:
67:43:1d:8b:46:e3:ff:e4:00:c2:91:22:9e:0c:b9:08:65:49:
88:b5:af:ca:32:f5:f2:c3:7a:1f:62:5c:b1:13:8b:8b:dc:0b:
f2:cc:47:54:cf:73:95:9c:31:c5:ed:be:ea:d9:fa:e3:f8:e5:
2d:b6:61:ab:3e:8b:9c:f9:f9:20:bd:2b:fd:fe:42:bc:ef:ea:
43:64:0f:4f:62:18:fc:ef:d5:62:ee:e9:30:91:0f:12:64:bc:
c0:2c:a5:68:a5:fa:b9:8a:ed:a7:e0:2b:a1:7b:47:31:1d:03:
4f:49:20:3e:92:8f:46:84:b3:07:cd:df:bf:16:68:5d:d5:3d:
27:1c:18:cc:9c:31:c6:2c:73:e7:4f:aa:11:e4:65:91:71:05:
39:df:54:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:56 2024 by rpki-client on console-fra.rpki-client.org